Prasad Pardeshi

CEO

Pune, Maharashtra, India18 yrs 3 mos experience

AI ML PractitionerAI Enabled

Key Highlights

18+ years in Information Security domain
Expert in Application Security Architecture
Proven track record in team building and management

Stackforce AI infers this person is a seasoned Application Security Architect with expertise in enterprise-level security assessments.

Contact

Skills

Core Skills

Application SecurityDevsecopsPenetration TestingDigital Forensics

Other Skills

AIMLAgile MethodologiesAndroidAngularJSApplication Security ArchitectureBurp SuiteChatGPTComputer ForensicsCyber-securityCybercrime InvestigationCybersecurityDevOpsDjangoEnCaseForensic Analysis

About

18+ years of experience in Information security domain. Currently working with Kimberly Clark as Application Security Architect. Technical Skills: Large Language Models (LLM) based application security assessment. Generative AI based application security assessment. Artificial intelligence (AI) and Machine Learning (ML) based application security assessment. Prompt Engineering. Web application security assessment Web service security assessment (JSON, XML) Mobile Application security assessment (iOS, Android, Windows) Secure Agile Development DevSecOps | CI / CD Secure Scrum Expert Secure Architecture Review OWASP Top 10 SANS Top 25 ISO 27001, PCI-DSS Thick client application security assessment Digital forensic investigation Vulnerability assessments. Penetration Testing Wireless network audits.

Experience

18 yrs 3 mos

Total Experience

6 yrs 7 mos

Average Tenure

5 yrs

Current Experience

Kimberly-clark

Application Security Architect

Jun 2021 – Present · 5 yrs · India

Mobile SecurityThird Party Risk Management (TPRM)Large Language Models (LLM)SAP SecurityApplication Security ArchitectureChatGPT+29

Fiserv

5 roles

Advisory - Information Security

Aug 2019 – Apr 2021 · 1 yr 8 mos

Prasad got transferred to Fiserv Costa Rica office to build team of Application penetration testers. Prasad was responsible to carry out following responsibilities -
1. Creating team of penetration testers out of local talent within the organisation.
2. Elevate technical expertise of existing resources working on Application security program.
3. Act as a single point of contact for Fiserv Costa Rica application security team.
4. Perform application security program responsibilities.

Mobile SecurityApplication Security ArchitectureOWASP ZAPVulnerability Assessment and Penetration Testing (VAPT)Penetration TestingApplication Security+1

Manager - Information Security

Apr 2018 – Aug 2019 · 1 yr 4 mos

Prasad was responsible for managing team of penetration testers at Pune location. This includes -
1) People management responsibilities.
2) Keeping track of penetration testing deliverables.
3) Ensuring quality of deliverables.
Prasad was responsible to work with multiple business units across the enterprise to understand the application architecture and perform risk assessment on the application architecture.
Prasad was responsible to perform risk management of security issues reported by penetration testers with the help of remediation timelines and compensating controls.
Additionally, he was responsible to perform penetration testing on various types of applications.

Mobile SecurityApplication Security ArchitectureOWASP ZAPVulnerability Assessment and Penetration Testing (VAPT)Penetration TestingApplication Security+1

Lead - Information Security

Promoted

Oct 2015 – Mar 2018 · 2 yrs 5 mos

Prasad was responsible for managing team of 5-6 penetration testers. This includes -
1) People management responsibilities.
2) Keeping track of deliverables.
3) Ensuring the quality of deliverables.
In addition to people management responsibilities, additional responsibilities includes but not limited to -
1) Performing penetration testing on web applications, web services / API's, Thick client applications and mobile applications.
2) Acted as subjected matter expertise of mobile applications on enterprise level from security point of view.
3) Driving innovation part across the enterprise application security team by keeping close track of new security issues coming on the surface, keeping close eye on security standards like OWASP Top 10, SANS Top 25, NIST, PCI-DSS.

Mobile SecurityApplication Security ArchitectureOWASP ZAPVulnerability Assessment and Penetration Testing (VAPT)Penetration TestingApplication Security+1

Information Security Specialist

Mar 2013 – Sep 2015 · 2 yrs 6 mos

Prasad was responsible to conduct penetration testing of web applications, web services / API's, thick client applications and mobile applications.
Prasad was responsible to build mobile application penetration testing team on enterprise level. This includes preparing technical documentations, creating process documents and maintaining repository of all security test cases.
Additionally, he was responsible to perform internal reviews of the penetration testing deliverables created by several penetration testers.
Prasad was single point of contact for penetration testing team working at Pune location from operational as well technical point of view.
Prasad was responsible to conduct remediation meetings with application owners and other stakeholders in order to make them understand the security issues and their technical remediation.

Mobile SecurityOWASP ZAPVulnerability Assessment and Penetration Testing (VAPT)Penetration TestingApplication SecurityWeb Application Security

Senior Engineer - Information Security

Mar 2010 – Feb 2013 · 2 yrs 11 mos

Prasad was part of Enterprise application security team. He was responsible to conduct penetration testing on web applications, web services, mobile.applocations as well as thick client applications.
Prasad was responsible to perform automated security scanning of web applications using several security scanning tools.

Mobile SecurityOWASP ZAPVulnerability Assessment and Penetration Testing (VAPT)Penetration TestingApplication SecurityWeb Application Security

Syntel

Analyst Programmer

Oct 2007 – Mar 2010 · 2 yrs 5 mos · Pune/Pimpri-Chinchwad Area

Prasad worked as information security engineer with Information security team at Syntel. Prasad worked on following areas -
1) ISO 27001 Audits - Performed internal audits of several horizontal support groups including but not limited to IT, Admin.
2) Digital Forensic Investigation - Performed digital forensic investigation using various tools such as EnCase, WinHex etc.
3) Web Application Penetration Testing - Performed web application penetration testing on various applications from different technology stacks including but not limited to .NET, JAVA etc.
Prasad also worked as developer and delivered projects based on following technology stacks -
1) C#.NET
2) SharePoint 2007

Computer ForensicsEnCaseForensic AnalysisPenetration TestingApplication SecurityWeb Application Security+1